1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

Are there any risks or downsides to installing a firewall like Skynet or AiProtection?

Discussion in 'Asuswrt-Merlin' started by Nicoletta, Jun 30, 2020.

  1. Nicoletta

    Nicoletta New Around Here

    Joined:
    Jun 29, 2020
    Messages:
    4
    Most of my firewall knowledge is from decades ago when all a firewall ever did for me was slow things down and get in my way. Could have been for my own protection, but still was a pain. Even now I find that simple adblockers will get in the way and need to have lines added to a whitelist even when using regular websites and apps.

    What does the firewall world look like right now? Will my family be asking why the internet isn't working properly if I decide to install a firewall?
     
  2. Vexira

    Vexira Part of the Furniture

    Joined:
    Jan 20, 2017
    Messages:
    2,194
    Location:
    Australia
    I run so protection 24/7 no issues and it has a white list for the rare flash positive
     
    L&LD likes this.
  3. predatorz

    predatorz Occasional Visitor

    Joined:
    Jan 11, 2014
    Messages:
    25
    Might block connection to website if the website IP is in ban list.
    but if connection got blocked, will show up in skynet logs or AiProtection log (web UI)
     
  4. thelonelycoder

    thelonelycoder Part of the Furniture

    Joined:
    Jan 23, 2014
    Messages:
    6,987
    Location:
    Switzerland
    Skynet and Diversion are the perfect couple and a must have IMO on Asuswrt-Merlin routers.
    They auto exchange whitelists, so if you have to whitelist something, you only have to do it in one of them.
    Selecting a smallish blocking list in Diversion usually has no impact on web browsing, meaning there's nothing to whitelist.
     
    andresmorago, L&LD and QuikSilver like this.
  5. JT Strickland

    JT Strickland Senior Member

    Joined:
    Sep 19, 2019
    Messages:
    222
    There are risks and downsides to NOT installing them IMHO.
     
    L&LD, Amwjujo and thelonelycoder like this.
  6. fields987

    fields987 Regular Contributor

    Joined:
    Mar 14, 2020
    Messages:
    56
    I started using Skynet a few months ago and have not had any negative impact browsing the internet or with connectivity of iot devices using the default list. That said, identifying and unblocking is well documented on here.

    I also use nextdns with most privacy/security features enabled. What I’ve noticed on there is is you search for something and click on one of the sponsored/advertisement results, those get blocked. You can disable this or allow these ad domains but I’m retraining myself to scroll down past the ads in the search results.
     
  7. Wallace_n_Gromit

    Wallace_n_Gromit Regular Contributor

    Joined:
    Jul 25, 2019
    Messages:
    113
    Location:
    Puget Sound Area
    +What simple adblockers do you use? I use the browser extensions Ublock Origin and/or Ghostery. No problem there. Easily configurable. If a website doesn't render right go to the upper right side of the browser, right click on the extension(s) and Trust Site/Allow/Power off

    +You also might try using a HOSTS file on your local system to filter content. I use https://winhelp2002.mvps.org/hosts.htm

    +Also do you know about private/secure DNS? Try a search for "Quad9 9.9.9.9" https://www.quad9.net/ or "Cloudflare for families" https://cloudflare-dns.com/family/ ... i.e. let the DNS filter out malware, adult sites.

    + And of course diversion, skynet, pixelserv-tls, and a lot of the amazingly great scripts offered in these threads.

    There is NO REASON at all why you would not want to layer your protections. SO it's not a matter of doing only one over another, do them all!!!

    EDIT: One caveat--sometimes my wife yells at me when she (rarely) can't get her websites to work. :oops::( There might be some tweaking you must do, once in a great while, to get everything working on some (new) sites. A small price to pay for safe surfing, eh?
     
    Last edited: Jun 30, 2020
    jsbeddow and AntonK like this.
  8. Nicoletta

    Nicoletta New Around Here

    Joined:
    Jun 29, 2020
    Messages:
    4
    I've been using nano adblocker and nano defender. I love how easy it is to just turn off and on when necessary. Some sites absolutely insist that adblockers are off for them to function, other sites I like to support